CISA Releases Update to ED 26-03 to Include New Required Actions and Reporting Requirement for Federal Agencies
Cybersecurity and Infrastructure Security Agency sent this bulletin at 03/11/2026 11:03 AM EDT
You are subscribed to Cybersecurity Advisories for Cybersecurity and Infrastructure Security Agency. This information has recently been updated and is now available.
CISA Releases Update to ED 26-03 to Include New Required Actions and Reporting Requirement for Federal Agencies
03/11/2026 11:00 AM EST
CISA has released an update to Emergency Directive (ED) 26-03: Mitigate Vulnerabilities in Cisco Software-Defined Wide-Area Networking (SD-WAN) Systems that requires new actions and an additional reporting requirement for federal agencies running affected products.
Federal Civilian Executive Branch (FCEB) agencies are directed to take additional actions outlined in the update involving Cisco SD-WAN systems on agency networks or hosted by third parties on an agency’s behalf.
Following completion of these actions, agencies are to report updates to CISA using the CISA provided template on the actions taken to provide logs to CISA via its Cloud Logging Aggregation Warehouse program. For assistance with this task, agencies should contact CLAWOperationsSupport@cisa.dhs.gov.
CISA also updated its Supplemental Direction ED 26-03: Hunt and Hardening Guidance for Cisco SD-WAN Systems to provide prescriptive actions for FCEB agencies.
This product is provided subject to this Notification and this Privacy & Use policy.
Please share your thoughts with us through this this anonymous survey. We appreciate your feedback.